Skip to content

v6.6.0

Latest
Latest

Choose a tag to compare

View all tags
@kdeldycke kdeldycke released this 17 Jun 16:32
Immutable release. Only release title and notes can be modified.
v6.6.0
41c7edb
  • Breaking: [mpm] Rename the global --stats / --no-stats flag to --summary / --no-summary. Scripts passing the old flag must update.
  • Breaking: [mpm] Move cyclonedx-python-lib and spdx-tools into a new [sbom] extra: mpm sbom now requires pip install meta-package-manager[sbom]. packageurl-python stays in the runtime install. The standalone binary distribution keeps shipping SBOM support: [tool.repomatic] nuitka.extras = ["sbom"] syncs the extra into the build venv and [tool.nuitka] include-package = ["cyclonedx", "spdx_tools"] forces Nuitka to bundle the try/except-guarded imports.
  • [asdf] Add asdf package manager (installed, outdated, search, install, upgrade, upgrade_all, remove, sync) on Linux and macOS; requires asdf >=0.16.0.
  • [mise] Add mise package manager (installed, outdated, search, install, upgrade, upgrade_all, remove, sync, cleanup), cross-platform; requires mise >=2025.5.10.
  • [mpm] Add the --man (roff man page) and --accessible (no ANSI or Unicode, for screen readers) global options from click-extra, and attach an mpm-manpages.tar.gz asset to each release.
  • [mpm] Add a --cooldown DURATION option and [mpm] cooldown config to refuse installing or upgrading package versions newer than a given release age, as a supply-chain mitigation; unsupported managers are skipped unless --allow-no-cooldown.
  • [brew] Adapt to Homebrew 6.0.0: pass --yes to brew upgrade to suppress the new interactive prompt, and trust tap-qualified installs before installing to avoid tap trust is required aborts. Bumps minimum brew from 2.7.0 to 6.0.0.
  • [zerobrew] Add upgrade and upgrade_all support via zb upgrade, and bump minimum zb from 0.2.0 to 0.3.0.
  • [mpm] Make mpm sbom maximalist by default, collecting rich per-package metadata (license, supplier, homepage, checksums, dependency graph) into SPDX and CycloneDX exports, with --minimal for the bare inventory.
  • [mpm] Attach canonical SPDX URLs to each identifier inside compound license expressions in CycloneDX 1.7 output (licenses[].expressionDetails[]).
  • [mpm] Reduce default-verbosity noise on operational subcommands: captured stderr and implicit-selection Skip messages drop to DEBUG, with a one-line error summary at the end of any subcommand whose CLIs accumulated errors.
  • [mpm] Fix pkg:cpan/…, pkg:guix/…, and pkg:nix/… pURL specifiers raising Unrecognized pURL type even though those managers are implemented.

Full changelog: v6.5.1...v6.6.0

🛡️ VirusTotal scans

Binary Detections Analysis
mpm-6.6.0-linux-arm64.bin 0 / 61 View scan
mpm-6.6.0-linux-x64.bin 0 / 60 View scan
mpm-6.6.0-macos-arm64.bin 2 / 61 View scan
mpm-6.6.0-macos-x64.bin 1 / 54 View scan
mpm-6.6.0-windows-arm64.exe 2 / 67 View scan
mpm-6.6.0-windows-x64.exe 18 / 68 View scan
Assets 14
Loading